Gotham Security Daily Threat Alerts

January 29, Dark Reading – (International) ZeroAccess click-fraud botnet back in action again. Researchers at Dell SecureWorks reported that the ZeroAccess botnet that was disrupted by authorities in 2013, resurfaced and is targeting major search engines and browsers to perpetrate click fraud templates to compromised systems. Source

January 28, Securityweek– (International) Apple fixes tens of vulnerabilities in OSX, iOS, Safari, Apple TV. Apple released updates for OSC, iOS, Safari and Apple TV addressing a total of 54 security issues and the disabling of all Flash Player plugins prior to versions 16.0.0.296 and 13.0.0.264 following recent reports of Adobe Flash Player zero-days. Source

January 27, Threatpost – (International) GHOST glibc remote code execution vulnerability affects all Linux systems. Researchers with Qualys discovered a critical vulnerability in the Linux GNU C Library (glibc) known as GHOST that can be triggered by the library’s gethostbyname functions that could allow attackers to execute code and remotely gain control of Linux machines. Source